nvemb3r Posted August 7, 2013 Share Posted August 7, 2013 Hello, I'm having issues trying to unblock ports 989 and 990 on iptables. I'm able to connect to my vsftpd service with plain FTP (not what I'm comfortable with), and I've been able to unblock ports for other services I use (Apache, OpenSSH, etc). Every time I do a port scan, those two ports never come up. I don't know if I screwed up iptables, or if I screwed up my daemon. Or both. Quote Link to comment Share on other sites More sharing options...
digip Posted August 7, 2013 Share Posted August 7, 2013 You can use TLS over standard 20,21 for ftps, or, 22 and just use scp, which I find better than using secure ftp in my opinion. only one port needed and secured via your SSH settings. Quote Link to comment Share on other sites More sharing options...
nvemb3r Posted August 11, 2013 Author Share Posted August 11, 2013 Sorry for getting back to you late. Accessing FTPS over port 21 instead of port 990 worked. I've had issues with iptables and the config file that I didn't notice before. :) Changes to vsftpd.conf: # Certificate and key locations rsa_cert_file=/etc/ssl/private/vsftpd.pem rsa_private_key_file=/etc/ssl/private/vsftpd.key # Turn on SSL ssl_enable=YES ssl_tlsv1=YES ssl_sslv2=YES ssl_sslv3=YES ssl_ciphers=HIGH # Enable Implicit SSL implicit_ssl=YES pasv_enable=YES pasv_min_port=15000 pasv_max_port=16000 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.